AWS inspector documentation change
Summary
Added regional availability/pricing details and clarified Security Hub integration limitations for Code Security
Security assessment
While documenting security feature (Code Security) availability and integration limitations, there's no evidence of addressing specific vulnerabilities. The Security Hub note informs users about visibility limitations but doesn't indicate a security flaw.
Diff
diff --git a/inspector/latest/user/code-security-assessments.md b/inspector/latest/user/code-security-assessments.md index 068d7946e..3310077d7 100644 --- a//inspector/latest/user/code-security-assessments.md +++ b//inspector/latest/user/code-security-assessments.md @@ -7 +7 @@ -Amazon Inspector is a vulnerability management service that automatically discovers workloads and continually scans them for software vulnerabilities and unintended network exposure. With Code Security, Amazon Inspector scans first-party application source code, third-party application dependencies, and Infrastructure as Code for vulnerabilities. You can activate Code Security in the Amazon Inspector console or with the Amazon Inspector API. Once you activate Code Security, you can create and apply a scan configuration to your code repository to determine how often and when it will be scanned. You can view, edit, and delete your scan configuration at any time. +Amazon Inspector is a vulnerability management service that automatically discovers workloads and continually scans them for software vulnerabilities and unintended network exposure. With Code Security, Amazon Inspector scans first-party application source code, third-party application dependencies, and Infrastructure as Code for vulnerabilities. You can activate Code Security in the Amazon Inspector console or with the Amazon Inspector API. Once you activate Code Security, you can create and apply a scan configuration to your code repository to determine how often and when it will be scanned. You can view, edit, and delete your scan configuration at any time. For information about the AWS Regions where Code Security is available, see [Regions and endpoints](https://docs.aws.amazon.com/inspector/latest/user/inspector_regions.html#ins-regional-feature-availability). For information about pricing, see [Amazon Inspector pricing](https://aws.amazon.com/inspector/pricing/?nc=sn&loc=3&refid=0d873978-11ec-4d4f-9e53-b563bf029726). @@ -9 +9 @@ Amazon Inspector is a vulnerability management service that automatically discov -###### Supported AWS Regions +###### Note @@ -11,5 +11 @@ Amazon Inspector is a vulnerability management service that automatically discov -For information about the AWS Regions where Code Security is available, see [Regions and endpoints](https://docs.aws.amazon.com/inspector/latest/user/inspector_regions.html#ins-regional-feature-availability). - -###### Pricing - -For information about pricing, see [Amazon Inspector pricing](https://aws.amazon.com/inspector/pricing/?nc=sn&loc=3&refid=0d873978-11ec-4d4f-9e53-b563bf029726). +Security findings generated by [Amazon Inspector Code Security](https://docs.aws.amazon.com/inspector/latest/user/code-security-assessments.html) are not available for the [Amazon Inspector integration with Security Hub](https://docs.aws.amazon.com/inspector/latest/user/securityhub-integration.html). However, you can access these particular findings in the Amazon Inspector console and through the [Amazon Inspector API](https://docs.aws.amazon.com/inspector/v2/APIReference/Welcome.html).